Sr. Security Analyst/SIEM Administrator L3 (Weekend Shift)
Ireland
Extreme Networks
We provide networking solutions to power your business. Our flexible and scalable cloud networking services help optimize your network infrastructure.
There has never been a better time to join Extreme, after three acquisitions extending our portfolio and go-to-market strategy, we have seen enormous opportunity and growth within the region. Aside from being a Technology Leader in the Gartner Magic Quadrant, we also adamantly promote an internal culture that truly embraces diversity, inclusion, and equality in the workplace. Having Diversity and Inclusion as part of our core values and beliefs, we are proud to foster an environment where every Extreme employee can thrive because of their differences, not despite them.
Job Summary:As a key member of the Information Security Operations team, you will be primarily responsible for the monitoring & responding to security events & tickets; investigating root cause analysis of issues and updating and investigating threat feeds and alerts; and management and operation of the SIEM (Security Information and Event Management) solution. In addition to the above tasks, you will support the wider information security and IT teams as appropriate on additional requests.The successful candidate should have a mind set to challenge existing processes, always looking for better ways to achieve the team and business goals through more efficient or updated processes.As part of the Information Security Operations Team, this role will include on-call shift work over a weekend.
Job Summary:As a key member of the Information Security Operations team, you will be primarily responsible for the monitoring & responding to security events & tickets; investigating root cause analysis of issues and updating and investigating threat feeds and alerts; and management and operation of the SIEM (Security Information and Event Management) solution. In addition to the above tasks, you will support the wider information security and IT teams as appropriate on additional requests.The successful candidate should have a mind set to challenge existing processes, always looking for better ways to achieve the team and business goals through more efficient or updated processes.As part of the Information Security Operations Team, this role will include on-call shift work over a weekend.
Job Requirements:
- The job requirements include but are not limited to the following tasks.
- This is a L3 level role
- Continuously monitor SIEM Console, ServiceNow incident queues and SecOps dashboards for alerts, tickets, and issues.
- Notify system owners and Escalate security incidents per the incident response escalation procedures.
- SIEM Administration experience is need for this role. Alert tuning and configuration.
- Monitor devices system performance, system resources utilization (disk space, indexed data) and health monitoring.
- tuning and policy enhancement for SIEM and other SecOp’s tools.
- Responsible for troubleshooting SIEM and SOC (Security Operations Center) operational related issues.
- Assist in case of major outbreak or any critical incident related issue.
- The Incident response team will perform a deep dive incidents analysis by correlating data from the various sources.
- Respond to all reported security incidents.
- Follow up with teams for incident closure.
- Maintain incident records as per the guidelines.
- Capture and protect the evidence related to an incident.
- Develop IoC (Indicators of Compromise) related to new threats.
- Deep-dive investigations including traffic & malware analysis.
- Perform incident damage assessment.
- Update stakeholders about security incidents progress.
- Strong interpersonal communication skills.
- Good verbal and written communication skills.
- Ability to analyze problems and create solutions to Maintain confidentiality of information.
- Must be able to prioritize projects, maintaining a sense of urgency to meet deadlines.
- Must possess the ability to follow verbal and written directions.
- Must be a self-starter and able to work well in independently and in Team.
- Must be able to use critical thinking skills and judgment.
- Must be able to work positively and professionally with a wide range of personalities.
- Must be able to accept constructive criticism.
Working Schedule
- The role will involve providing the primary on-call cover for the weekend during the daytime shifts. The remainder of the 40hr week will be spread out during the Monday to Friday on an agreed schedule, as aligning with the rest of the team.
Experience
- Ideal candidates will have background / experience in security operations. To perform this job successfully, an individual must be able to perform each essential duty satisfactorily.
- The ideal candidate should be able to work autonomously and be self-motivated.
- The ideal candidate will have experience using / performing searches and tuning a SIEM product.
- The ideal candidate will have experience with the Microsoft suite of security tools.
- The ideal candidate will have experience in using security incident response frameworks & Mitre framework.
- The requirements listed above are representative of the knowledge, skill and/or ability required.
- Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
1
0
0
Categories:
Admin Jobs
Analyst Jobs
Tags: Analytics Artificial Intelligence Automation Cloud Incident response Machine Learning Malware Monitoring SecOps SIEM SOC Strategy
Perks/benefits: Career development Team events
Region:
Europe
Country:
Ireland
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information System Security Officer jobsSenior Cloud Security Engineer jobsSenior Security Analyst jobsInformation Security Manager jobsInformation Security Specialist jobsSenior Cybersecurity Engineer jobsSenior Network Security Engineer jobsSecurity Consultant jobsIT Security Engineer jobsSecurity Specialist jobsSenior Information Security Analyst jobsSenior Penetration Tester jobsCyber Security Specialist jobsSenior Cyber Security Engineer jobsChief Information Security Officer jobsSystems Engineer jobsInformation System Security Officer (ISSO) jobsIT Security Analyst jobsCloud Security Architect jobsSenior Product Security Engineer jobsStaff Security Engineer jobsSystems Administrator jobsPrincipal Security Engineer jobsCybersecurity Specialist jobsSecurity Operations Analyst jobs
Kubernetes jobsCI/CD jobsForensics jobsEncryption jobsSaaS jobsIDS jobsEDR jobsSDLC jobsSplunk jobsIPS jobsBash jobsTop Secret jobsRMF jobsOWASP jobsIntrusion detection jobsSQL jobsThreat detection jobsCompTIA jobsFinance jobsDocker jobsDoDD 8570 jobsITIL jobsCRISC jobsActive Directory jobsOSCP jobs
VPN jobsGIAC jobsBanking jobsTCP/IP jobsHIPAA jobsUNIX jobsSANS jobsTerraform jobsMITRE ATT&CK jobsClearance Required jobsSOX jobsSOC 2 jobsCISO jobsIT infrastructure jobsCCSP jobsDNS jobsJavaScript jobsIndustrial jobsSOAR jobsPolygraph jobsJira jobsCryptography jobsData Analytics jobsAnsible jobsCyber defense jobs